[PATCH] RDMA/core: Fix uninitialized gid in ib_nl_process_good_ip_rsep()

Next message: Tzung-Bi Shih: "Re: [PATCH v5 5/7] revocable: Add fops replacement"
Previous message: Tianyang Zhang: "[PATCH v2] LoongArch: Let {pte,pmd}_modify() record the status of _PAGE_DIRTY"
Next in thread: Jason Gunthorpe: "Re: [PATCH] RDMA/core: Fix uninitialized gid in ib_nl_process_good_ip_rsep()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Kriish Sharma

Date: Thu Nov 06 2025 - 23:11:22 EST

KMSAN reported a use of uninitialized memory in hex_byte_pack()
via ip6_string() when printing %pI6 from ib_nl_handle_ip_res_resp().
If the LS_NLA_TYPE_DGID attribute is missing, 'gid' remains
uninitialized before being used in pr_info(), leading to a
KMSAN uninit-value report.

Reported-by: syzbot+938fcd548c303fe33c1a@xxxxxxxxxxxxxxxxxxxxxxxxx
Closes: https://syzkaller.appspot.com/bug?extid=938fcd548c303fe33c1a
Fixes: ae43f8286730 ("IB/core: Add IP to GID netlink offload")
Signed-off-by: Kriish Sharma <kriish.sharma2006@xxxxxxxxx>
---
drivers/infiniband/core/addr.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/drivers/infiniband/core/addr.c b/drivers/infiniband/core/addr.c
index 61596cda2b65..4c602fcae12f 100644
--- a/drivers/infiniband/core/addr.c
+++ b/drivers/infiniband/core/addr.c
@@ -99,7 +99,7 @@ static inline bool ib_nl_is_good_ip_resp(const struct nlmsghdr *nlh)
static void ib_nl_process_good_ip_rsep(const struct nlmsghdr *nlh)
{
const struct nlattr *head, *curr;
- union ib_gid gid;
+ union ib_gid gid = {};
struct addr_req *req;
int len, rem;
int found = 0;
--
2.34.1